DoJ, Chainalysis work to break up ransomware network that targets hospitals

Published at: Jan. 27, 2021

United States authorities have hit a major malware operator, with help from leading blockchain analytics firm Chainalysis.

On Wednesday, the Department of Justice announced the seizure of $454,530.19 in cryptocurrency from NetWalker, a ransomware operator the Federal Bureau of Investigation alleges to have targeted hospitals globally amid the COVID-19 pandemic. 

Piggybacking on the DoJ's announcement was Chainalysis, which took the opportunity to advertise the firm's involvement in tracking down NetWalker hardware in Bulgaria as well as Sebastien Vachon-Desjardins. The DoJ arrested Vachon-Desjardins, a Canadian national who it alleges to be an affiliate of the NetWalker network who garnered $27.6 million through its malware. 

The DoJ has yet to release a criminal complaint against any of those involved in NetWalker, presumably because, if its allegations are true, there is tens of millions of dollars out there yet to be seized. Chainalysis noted NetWalker's business model of ransomware-as-a-service as particularly difficult to investigate because:

"Attackers known as affiliates 'rent' usage of a particular ransomware strain from its creators or administrators, who in exchange get a cut of the money from each successful attack affiliates carry out. RaaS has led to more attacks, making it even more difficult to quantify the full financial impact."

The FBI initially flagged NetWalker as a threat to hospitals back in July 2020. At the time, the agency said it had first noticed the ransomware in March 2020, when COVID-19 lockdowns had come into place around the world. 

Ransomware has been on the rise over the course of the past year, as remote working has opened up new vulnerabilities in business networks or, in this case, in people's willingness to click on questionable links in emails that offer potential information on COVID-19 conditions.

Law enforcement interest in ransomware has, correspondingly, increased. Alongside other investigative concerns, the rise in ransomware-tracing has been lucrative for firms like Chainalysis, which have seen an inflow of government contracts

Tags
Regulation
Law
Fbi
Department Of Justice
Ransomware
Police
Related Posts
Declaring a crackdown? What to make of the DoJ crypto framework release
The United States Attorney General’s Cyber-Digital Task Force recently unveiled the result of its months-long effort to evaluate emerging cryptocurrency-related threats and articulate law enforcement strategies for countering them. The resulting guidance leaves the reader with an impression that its authors have a sound understanding of how the focal asset class works as well as a certain fixation on the ways it can be misused, as some observers contend. In the highly charged atmosphere of the final weeks before the presidential election, with high-profile enforcement actions against the people behind crypto derivatives exchange BitMEX and the U.S. government’s sweeping anti-monopoly …
Blockchain / Nov. 1, 2020
Law Decoded: Police and thieves on their screens, Oct 2–9
Every Friday, Law Decoded delivers analysis on the week’s critical stories in the realms of policy, regulation and law. Editor's note Historians typically date the birth of international policing as we know it today to the 1800s, a response to the explosion in nationalist movements and non-governmental political radicalism in Europe. Just as new linking technologies like the telegraph and the steam engine aided and abetted new networks of political deplorables and any number of Sherlock Holmes plots, the explosion of communications tech of the last quarter-century has brought about new forms of crime. Which is, y’know, something everyone passively …
Regulation / Oct. 9, 2020
The long arm of justice: How far can the DoJ really go in prosecuting foreign actors?
In early October, the U.S. Department of Justice revealed its Cryptocurrency Enforcement Framework, a report laying bare the government’s vision for emerging threats and enforcement strategies in the cryptocurrency space. The document is an important source of insight into how the laws governing digital finance will be soon implemented on the ground. One of the fundamental principles that the government asserts in the document is its broad extraterritorial jurisdiction over foreign-based actors who use virtual assets in ways that harm U.S. residents or businesses. The guidance sets an extremely low bar for perpetrators of cross-border crime to clear before they …
Regulation / Nov. 21, 2020
Antitrust watchdogs around the world are going back to school to study blockchain and AI
Competition authorities are hitting the books when it comes to emerging technologies like blockchain and AI. On Tuesday, the Department of Justice announced that it would be participating in a new initiative at Stanford University to onboard more advanced technological tools into its fight against monopolies. The DoJ is merely the most vocal addition to Stanford’s Computational Antitrust project. It joins the competition watchdogs of 46 other countries and the U.S.’s Federal Trade Commission. The announcement is part of a broad surge in interest in cutting-edge tech and antitrust law, the culmination of a lot of motion at both academia …
Regulation / Jan. 20, 2021
Skewed data: How could a new US law boost blockchain analysis?
2020 was a record year for ransomware payments ($692 million), and 2021 will probably be higher when all the data is in, Chainalysis recently reported. Moreover, with the outbreak of the Ukraine-Russia war, ransomware’s use as a geopolitical tool — not just a money grab — is expected to grow as well. But, a new U.S. law could stem this rising extortionist tide. United States President Joe Biden recently signed into law the Strengthening American Cybersecurity Act, or the Peters bill, requiring infrastructure firms to report to the government substantial cyber-attacks within 72 hours and within 24 hours if they …
Blockchain / April 1, 2022